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METHOD, SYSTEM, SERVER AND DEVICE FOR MAKING A 
COMMUNICATIONS NETWORK SECURE. 

As an increasing number of companies are 
connecting to networks and in particular to Internet, 
security on computer networks becomes an important 
issue at the dawn of the twenty-first century. Many 
5 problems arise in companies and other organizations. 
These problems are usually referred to under the term 
of computer hacking; the people who are responsible for 
this are referred to as hackers. 

This computer hacking has several facets. For 
^ 10 example, it may be performed from outside or from the 

Q inside of 'the company', this term 'company* referring 

^ to a firm of an industrial or commercial nature, a 

Ui government organization or any other association of 

J: interests. Further it may have different goals: alter, 

^ 15 suppress, peruse data (read, change or delete) ; or 

prevent the computer network from operating properly 
fy (notably by remotely impairing the operation of the 

1^ essential computers) . 

p Before continuing, hacking methods shall have to 

20 be discussed, those that may be described as physical 
methods because they are based on physical 
characteristics of the computer systems. 

The first and the most simple of these physical 
methods is what is called in computers, 'sniffing'. 
25 This corresponds to physical spying of connection 
cables. The hacker may thereby capture all the 
information which transits within this network. The 
hacker may obtain vital information: confidential 
information of any nature, network user passwords. He 
30 may also alter or delete these data. 
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A second method of physical hacking requires 
very considerable means. It is based on 
intercepting electromagnetic waves emitted by a 
computer screen (or emitted by any component of 
5 the computer system) . Another physical hacking 

method consists in perusing typed texts by simple 
observation while it is being typed on the 
keyboard or during its display on the screen. 
(Direct or indirect observation of the user). 
10 These physical methods are undetectable for the 

computer system and are independent of this system. 

Except for these physical methods, computer 
hacking may also be based on methods which will be 
termed as logical methods. These methods directly 
15 tackle the computer system's logic. 

Generally they make use of the weak points of this 
logic. Most of these methods frequently use what is 
called a trap, i.e. a loophole in an operating system 
or in another software package. These traps are entry 
20 points in a computer system which pass over the normal 
security measures. This may be a concealed program 
inside the computer system or an electronic component 
which makes the protection system inefficient. Further, 
the trap is often enabled by an event or a "normal" 
25 action. The trap may also be a voluntary loophole in 
the security system. In this case, the traps are not 
always harmful: certain operating systems have user 
accounts with high privileges for facilitating the work 
of maintenance technicians. 
30 In order to understand these logical methods, it 

should be brought to mind that every time a user makes 
a request in order to access a file or more generally a 
computer resource, the operating system decides whether 



3 



this user is authorized or not to access this file. The 
operating system makes this decision according to 
several criteria such as the owner of the file, the 
identification of the person who is requesting access 
5 to it, the access authorizations which have been 
determined by the owner. Therefore, the hacker must 
deceive the computer system in order to obtain the 
desired information by interfering with its logic. 

It is practically unfeasible to create an 
10 exhaustive list of the methods used for hacking 
computer data or a network as these methods are so 
numerous. However, it should be stressed that they 
include common points after all and more particularly a 
S| common logic. General methods may thereby be 

^ 15 established for opposing these hackers. 

M A first known method for defeating logical hacking 

consists in asking the user to provide a password in 
^ order to access data, a password which is acknowledged 

=lj by the operating system. This password is a numerical 

y 20 value. Today, this remains the keystone of all security 

3 systems. Now, this is also its primary weak point: a 

□ hacker which knows the password of a user may access to 

this user's private data and may also impersonate this 
user which is far worst. Any action, error, mistake 
25 thereby committed by the hacker will therefore be 
wrongly ascribed to the hacked user. 

Another known method for defeating hacking 
consists in encrypting data. This method is often 
considered as sufficient. This enciphering is presently 
30 carried out with software packages or electronic cards. 
The enciphering is based on using an encipherment key. 
This encipherment key is one of the weak points of this 
method. With this method, when two computers want to 
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communicate which each other, they must first be 
authenticated one by the other, i.e., use a common 
encipherment key. Presently this authentication process 
is numerical and is based either on a code typed in by 
5 the user or on a code logically generated by both 
computers. In this second case, unfortunately, both 
computers have to exchange a sequence of information 
until they mutually authenticate each other. It follows 
that a third computer entering and hacking this system 

10 may locate the generated code by perusing over this 
exchange of information. By doing this, it may have 
access to the transmitted data and may even usurp the 
identity of these hacked machines. 

Data encryption is also used for making 

15 information contained on a computer data medium 
incomprehensible. In this case, the enciphering keys 
are generated in the same way as for encipherment of 
transmissions. 

All enciphering methods presently used are based 

20 on mathematical algorithms. There are two encipherment 
algorithm classes: symmetrical algorithms and 
asymmetrical algorithms . 

The symmetrical algorithm only uses one single 
enciphering key which therefore serves both for 

25 encrypting and decrypting data at the same time. 
Conversely, the asymmetrical algorithm uses two keys: a 
public key and a private key. In this second 
enciphering method, each user has two keys: a private 
key and a public key. His public key is known to all 

30 the other users. With it, the message may be encrypted 
but not decrypted. His private key is only known to him 
exclusively, and is unknown to the other users. With 
it, the enciphered message may be decrypted. 
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An asymmetrical system may be used for a key 
exchange protocol, i.e., a protocol enabling two users 
to agree on a symmetrical encipherment key to be used 
for the actual encipherment. 
5 An example of such a protocol is detailed in US- 

4200770 et CA-1121480. As an example, and for a better 
understanding of the present document, this 
asymmetrical algorithm is described hereafter. 

In the rest of the present document, the notation 

10 g'^a[N] represents g to the power of a, modulo N. 

Let A et B be two users of the algorithm. Each 
user has a confidential private key, for example 'a' 
for A et 'b' for B. The numbers g'^a [N] and g'^b [N] are 
known to all. Numbers g et N are fixed and chosen once 

15 and for all by A and B, in such a way that the 
multiplicative group for the successive powers of g 
modulo N has a large number of elements. Practically, N 
is chosen to be a very large prime number with for 
example about a hundred of decimal figures and such 

20 that (N-l)/2 is prime, and that g is a primitive root 
modulo N, i.e. a generator for the multiplicative 
modulo N group. 

When A wants to communicates with B in such a way 
as to be only understood by B, A takes the public key 

25 of B: g'^b and raises it to the power of 'a* (always 
modulo N) which gives g^ (ba) and thus provides the 
encipherment key for a symmetric algorithm, B is the 
only one able to understand the message by doing 
(g^a)^b = g^{ab) = g'^lba) [N] . 

30 This method works because there is no known 

algorithm for solving within a reasonable time, the 'x' 
equation: g'^x = d [N] if N is very large. 

Private keys 'a' and 'b' of A and B are usually 
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generated by random number generators upon first 
communication between the two speakers. As these 
numbers are not always stored, they must now be 
regenerated regularly . 
5 The encipherment algorithms presently used are 

very efficient. However, user authentication is not 
fully satisfying. In the case of direct authentication 
between two encipherment devices (therefore without any 
human intervention) , a third encipherment device may 
10 manage to impersonate one of the other two devices and 
may thus access data on the other computer, as already 
mentioned. If the authentication requires that a code 
^ be typed in by the user on the keyboard of his 

SJ computer, this code may be intercepted by a hacker or 

15 may be directly observed when it is typed in on the 
In keyboard. 

There is a third known method against hacking. 
« This method is related to the protection of internal 

5== networks. • In order to prevent intruders from 

Ri 20 penetrating into an internal network, several companies 

}Z have introduced on the market, locks (more commonly 

□ called "firewalls" by computer specialists). This is a 

logical barrier between the company's network and a 
network which has not been made secure (for example, 
25 Internet) . A lock is a device placed on a specific 
computer which prevents unauthorized accesses to 
information resources of the internal network. In other 
words, a lock operates like a gateway by monitoring 
information flowing in both directions. It is able to 
30 prevent certain external users from accessing certain 
data or software resources of the internal network. 
Thus, security problems of the internal network with 
regards to the outside world, are normally confined in 
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one single point of the network: the lock. 

This lock, if it is properly used (alas, this is 
the case very rarely), is logically impenetrable. So, 
one will have to resort to another approach: for 
5 instance, the hacker will prevent the computer hosting 
the lock from properly operating by saturating it with 
messages sent to it profusely which will force this' 
computer to exceed its information processing 
capabilities. If this computer is no longer running, 
10 the hacker may then penetrate into the network which is 
no longer made secure by the lock. 

Further, a lock is no protection against a 
■-^ possible hacker directly working within the network. 

Unfortunately, this case is not an exception and 
Ir 15 according to the FBI, more than 80% of the hackings 

Ln would be due to a person having an internal access to 

J: the network. 

= In order to defeat computer hacking in addition to 

JT; the aforementioned prevention techniques, an attempt 

ry 20 may also be made to find out who the author of this 

hacki-ng is. It is possible to make use of the computer 
B traces left behind him: opening of files, connections 

with servers... indeed, most computer handling 
operations leave digital traces in the operating 
25 systems. Unfortunately, it is rather easy to conceal 
these traces: usurping somebody's identity by using his 
password, borrowing a workstation so as to have someone 
else accused, are standard hacker techniques and are 
very easily implemented. Indeed today, user 
30 authentication is performed through his digital 
identifier but not by recognizing the physical person. 
As a result, one can never be absolutely certain of the 
identity of the user of a computer. 
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In order to increase the level of user 
authentication, several companies use bank 

authentication techniques: chip cards. New physical 
authentication methods like examining the retina or the 
finger prints of the user, exist but are still not very 
used because their reliability is still relatively 
unknown . 

To summarize, it may be stated that the present 
methods for making a computer network safe have 
definite drawbacks. Indeed, they are based on operating 
systems having security loopholes, on imperfect 
authentication of the users. Furthermore, although 
security problems from outside the companies or the 
computerized organizations are feared essentially, it 
should also be considered, unfortunately, that very 
often these problems have an internal cause. A 
satisfactory method for making a computer network 
secure must therefore protect this network both from 
external and internal hacking. 

The object of the present invention is to solve 
the aforementioned primary security problems of 
internal networks of a company or of any other interest 
group . 

For this purpose, the present invention provides a 
method for distribut ively and dynamically making a 
communications network secure, notably of the Internet 
type, characterized in that it comprises the following 
steps : 

the step for interconnecting a device between each 
piece of computer equipment which should be made 
secure and the communications network, 
the step for intercepting communications between a 
piece of computer equipment provided with the 
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device and the communications network by means of 
said device to which this equipment is connected, 
the step for obtaining information related to a 
user of the piece of computer equipment by means 
of an authentication module associated with said 
device, 

the step for defining a security level of the 
aforementioned device by means of the 
authentication module associated with the device, 
the step for transmitting information related to 
the user and the security level of the device to 
an authentication management sever connected to 
the network, 

the step for processing by means of the server, 
said information related to the user and the said 
security level of the device and for 
authenticating the user with the help of such 
information, 

the step for managing authentications and security 
levels by means of the authentication management 
server, 

- the step for transmitting security parameters from 
the server to the network devices, 

the step for storing by means of the devices, said 
security parameters from the server, 

- the step for processing by means of the devices, 
said security parameters from the server. 

This enables the identity of the user of the 
device according to the invention to be known at any 
time. Thus, the user authentication is performed in two 
steps: the authentication module sends information on 
the user (for example the fact that he has been 
properly authenticated by means of such a chip card, or 
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still by his finger prints or a picture of his retina) . 
This information is specific to each user and is sent 
to the authentication management server. This server 
then checks whether the relevant user is authorized to 
5 use the network component equipped with the device 
according to the invention which has just sent the 
authentication request. The server then sends back to 
the device according to the invention, its consent or 
it reports that the user is not authorized to use said 
10 network component. 

This method provides distributed and dynamic 
security on a computer network. Indeed, security is 
"JZ. supported by interconnected devices between each 

S| computer equipment which should be made secure and the 

15 communications network. The security of these devices 
m is managed by a central server which receives 

f= information from all these devices. The server may now 

= choose an overall security policy which will then be 

applied at each of the devices. 
\y 20 This security is configurable and it may develop 

Q. over time according to new needs or modes of attack. 

S Indeed, a more flexible management of the network 

is achieved by having this list of security parameters 
sent by an authentication management server. The sent 
25 information may be very simply changed on the 
authentication server. User access authorization may 
thereby be changed easily. 

Specifically, it should be noted that the security 
parameters depend on: 
30 - the user, 

the network component which he desires to use, 
the security level which he has selected, 
the date and time, 
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the network status 

and all the security parameters already provided 
to the devices. 

On the other hand, an embodiment using a data 
5 medium specific to each user and containing the 
aforementioned list does not provide simple management 
of the network: any change in the security parameters 
of the user requires the changing of data contained in 
his private data medium. 
10 The address of the authentication management 

server is either provided by the user of the device or 
already stored in the device. 

Advantageously, the security parameters comprise: 

- a list of authorized computer client /server 
15 applications, 

- information enabling the devices to analyze the 
messages related to said client /server 
applications . 

Advantageously, the method according to the 
20 invention consists of: 

- the step for analyzing by means of the device, the 
messages related to said client /server 
applications , 

the step for filtering by means of the device, the 
25 messages related to said client /server 

applications, 

- the step for changing by means of the device, the 
messages related to said client /server 
applications . 

30 The filtering of the messages may thus eliminate 

information packets which do not comply with the 
communications protocol used on the computer network. 
Indeed, an information packet of a specific 
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communications protocol (for example TCP/IP, FTP, POP, 
etc.) has certain properties which are easy to check. 
If the packet does not have them, it is considered as 
invalid . This operation is usually performed by the 
5 operating system or by a lock. The device according to 
the invention may therefore alleviate the task of the 
network component to which it is connected. 

One should be aware that the computer hacker often 
uses badly formed packets sent in a great number onto 

10 the machine to be hacked in order to increase the 
operational load of this machine with the purpose of 
interfering with its operation. 

The security parameters enabling the messages 
related to said client /server applications to be 

15 analyzed may also contain a list of communication 
ports. One should be aware that each software package 
which needs to communicate with the network, uses a 
certain communication port. For example, in order to 
read electronic mail, a well-defined port must be used, 

20 another one has to be used for examining Internet 
sites . 

Thus, an application may already be well 
characterized by a simple list of communication ports. 

Hackers often use a Trojan horse, i.e. a program 

25 placed on the target machine which will enable the 
hacker to perform certain tasks thereon. Now, a Trojan 
horse needs a communications port in order to receive 
orders from its designer. When a packet passes through 
the device, the device's processing means check whether 

30 this packet is using an authorized port. Thus, a given 
user may be prevented from accessing to the Internet or 
a Trojan horse may be prevented from chatting with its 
designer . 
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This method provides a lock managed by a server 
and distributed over all the network. In addition, this 
lock has particular properties for each piece of 
computer equipment equipped with the device. 
5 Advantageously, the security parameters further 

comprise: 

- a list of pieces of computer equipment which the 
user is authorized to communicate with. 
Advantageously , the method according to the 

10 invention further consists of the following steps: 

- the step for having the device transmit messages 
between the piece of computer equipment to which 
it is connected and the computer equipment which 
the user is authorized to communicate with, 

15 - the step for having the device block the messages 
between the piece of computer equipment to which 
it is connected and the computer equipment which 
the user is unauthorized to communicate with. 
The filtering of the messages is first carried out 
20 according to the list of network components which the 
user of the invention is authorized to communicate 
with. Because, it should be recalled that each 
information packet contains the address of the sender 
or of the addressee. Thus, a user will be unable to 
25 receive or send messages to computer equipment which 
does not belong to his address list. 

With this method, a system may be designed for 
partitioning the network components. 

Advantageously, the method according to the 
30 invention further comprises the following steps: 

the step for customizing the device with a private 
encipherment key provided by means of the 
authentication module. 
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- the step for storing, by means of the server, all 
the public encipherment keys associated with the 
private encipherment keys which customize the 
devices . 

5 Advantageously, the security parameters further 

comprise : 

- a list of pieces of computer equipment which the 
user is authorized to communicate with, in an 
enciphered way, 

10 - the public encipherment key of each piece of 
computer equipment which the user is also 
authorized to communicate with, in an enciphered 

-y Advantageously, the method according to the 

15 invention further comprises the following steps: 

y1 - the step for enciphering by means of the device, 

2^ communications by combining the private 

H encipherment key of said device with the public 

Ls encipherment key of the computer equipment which 

ry 20 the user is authorized to communicate with, in an 

~ enciphered way. 

O In this operating mode, each device is customized 

by a private encipherment key allowing an encipherment 
key exchange protocol to be executed. This private 
25 key is associated with a public encipherment key 
registered in the list of pieces of computer equipment 
which the user is authorized to communicate with, in an 
enciphered way. 

As a reminder, if the asymmetrical algorithm from 
30 US-4200770 is used, the private key is written as 'a' 
and the public key is written as g^a [N] . 

The present invention provides a system for 
distributively and dynamically making a communications 
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network secure, notably of the Internet type, 

characterized in that it comprises: 

a device interconnected between each piece of 
computer equipment which should be made secure and 
5 the communications network, 

said device including two input/output interfaces 
for intercepting communications between a piece of 
computer equipment to which it is connected and 
the communications network, 
10 - said device further including an authentication 
module for obtaining information related to a user 
of the piece of computer equipment to which the 
device is connected, 

said module enables a security level of said 
15 device to be defined, 

said device including means for transmitting 
information related to the user and to the 
security level of the device, 

an authentication management server connected to 
20 the network, including processing means for 

processing said information and said security 
level and for authenticating the user with the 
help of said information, 

said server including management means for 
25 managing authentications and security levels, 

said server including means for transmitting 
security parameters to devices of the network, 
said devices including storing means for storing 
said security parameters, 
30 - said devices including processing means for 
processing said security parameters. 
Advantageously, the security parameters comprise: 
a list of authorized computer client /server 
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applications , 

- information enabling the devices to analyze the 
messages related to said client /server 
applications . 

Advantageously, the processing means of the device 
comprise : 

- means for analyzing the messages related to said 
client /server applications , 

- means for filtering the messages related to said 
client /server applications , 

- means for changing messages related to said 
client /server applications. 

Advantageously, the security parameters comprise: 
a list of pieces of computer equipment which the 
user is authorized to communicate with. 
Advantageously, said processing means of the 
device comprise: 

- means for allowing messages to be transmitted 
between the piece of computer equipment to which 
the device is connected and the computer equipment 
which the user is authorized to communicate with, 

- means for blocking messages between the piece of 
computer equipment to which said device is 
connected and computer equipment which the user is 
not authorized to communicate with. 

Advantageously, the system according to the 
invention comprises : 

- an authentication module associated with the 
device customized by means of a private 
encipherment key which customizes the device with 
which it is associated, 

- a server storing all the public encipherment keys 
associated with private encipherment keys which 
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customize the devices. 

Advantageously, the security parameters comprise: 

- a list of pieces of computer equipment which the 
user is authorized to communicate with, in an 

5 enciphered way, 

- the public encipherment key of each piece of 
computer equipment which the user is authorized to 
communicate with, in an enciphered way. 
Advantageously, the devices comprise: 

10 - an encipherment module for enciphering 
communications by combining the private 
encipherment key of the device with the public 
encipherment key of the computer equipment which 
the user is authorized to communicate with, in an 
15 enciphered way. 

The present invention provides a server for 
distributively and dynamically making a communications 
network secure, notably of the Internet type, 
characterized in that it comprises: 
20 - processing means for processing information from a 
device and related to a user of a piece of 
computer equipment to which this device is 
connected, 

- said processing means enable the user to be 
25 authenticated with the help of said information, 

- management means for managing the authentications, 

- transmission means for transmitting the security 
parameters to the devices of the network. 
Advantageously, the security parameters comprise: 

30 - a list of authorized computer client /server 
applications , 

information enabling the devices to analyze the 
messages related to said client /server 
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applications . 

Advantageously, the security parameters comprise: 
a list of pieces of computer equipment which the 
user is authorized to communicate with. 
Advantageously, the server according to the 
invention comprises : 

storage means for storing all the public 
encipherment keys associated with the private 
encipherment keys which customize the devices. 
Advantageously, the security parameters comprise: 
a list of pieces of computer equipment which the 
user is authorized to communicate with, in an 
enciphered way, 
- the public encipherment key of each piece of 
computer equipment which the user is authorized to 
communicate with, in an enciphered way. 
The present invention provides a device for making 
a communication network secure, interconnected between 
each piece of computer equipment which is to be made 
secure and said network and characterized in that it 
comprises : 

two input/output interfaces for intercepting 
communications between a piece of computer 
equipment to which it is connected and its 
communications network, 

an authentication module for obtaining information 
related to a user of the piece of computer 
equipment to which said device is connected and 
for defining the security level of said device, 
means for transmitting information related to the 
user and the security level of the device, to an 
authentication management server, 

storage means for storing security parameters from 
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the server, 

- processing means for processing said security 
parameters from the server. 

Advantageously, the security parameters comprise: 
5 - a list of authorized computer client/server 
applications , 

information enabling the devices to analyze the 
messages related to said client/server 
applications . 

10 Advantageously, said processing means of the 

device comprise: 

means for analyzing the messages related to said 
client /server applications , 

means for filtering the messages related to said 
15 client /server applications, 

- means for changing the messages to said 
client/ server applications . 

Advantageously, the security parameters comprise: 

- a list of pieces of computer equipment which the 
20 user is authorized to communicate with. 

Advantageously, said processing means of the 
device comprise: 

means for allowing messages to be transmitted 
between the piece of computer equipment to which 
25 the device is connected and computer equipment 

which the user is authorized to communicate with, 

- means for blocking messages between the piece of 
computer equipment to which the device is 
connected and computer equipment which the user is 

30 unauthorized to communicate with. 

Advantageously, the authentication module 

associated with said device provides: 

- a private encipherment key which customizes said 
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device. 

Advantageously, the security parameters further 
comprise : 

- a list of pieces of computer equipment which the 
user is authorized to communicate with, in an 
enciphered way, 

- the public encipherment key of each piece of 
computer equipment which the user is authorized to 
communicate with, in an enciphered way. 
Advantageously, the device according to the 

invention comprises : 

- an encipherment module for enciphering 
communications by combining the private 
encipherment key of said device with the public 
encipherment key of the piece of computer 
equipment which the user is authorized to 
communicate with, in an enciphered way. 

Thus, a computer equipment may communicate with 
another computer equipment in an enciphered way. The 
packet to be sent is enciphered by an encipherment 
module with the' help of the encipherment key 
corresponding to the address of the. other piece of 
computer equipment. The packet received from the 
network is deciphered by the private encipherment key 
of the device. 

For a better understanding of the invention, 
several embodiments thereof will now be described, as 
purely illustrative and non-limiting examples. 

In the drawing: 

Fig. 1 shows a general diagram of a computer 
network made secure through the invention. 

Fig. 2 shows a general diagram of a first 
embodiment of the device according to the invention. 
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Fig. 3 shows a general diagram of a second 
embodiment of the device according to the invention. 

Fig. 4 shows the second embodiment of the device 
according to the invention when it is implemented in a 
computer . 

Fig. 5 shows the second embodiment of the device 
according to the invention when it is on the outside of 
a computer component as an external module. 

Fig. 6 shows an embodiment of the encryption 
module 7 . 

Figs . 7 and 8 show an embodiment of the device 
according to the invention when it is miniaturized in a 
chip . 



Fig. 1 shows a general diagram of a network made 
secure through the invention. This may be an internal 
network of a company^ a public network like Internet or 
a mixed network^, i.e. one or more internal or external 
networks connected with each other. This network is 
made up of 7 computer components noted as A, B, C, D, 
E, F, G which may be a computer^, a computer server, a 
portable computer, a printer server, a printer... These 
computer components are equipped with the device 
according"^ to the invention. The network has an 
authentication management server S. Two users of this 
network have be illustrated: a user U using component A 
of the network and a user who may use component B of 
the network. 

Fig. 2 shows a general diagram of a first 
embodiment of the device according to the invention, 
made up of a microprocessor 1, connected through a data 
bus 2 to a memory 3, to two input /output interfaces 8 
and 9, to a user authentication module 6 and to an 
encryption module 7 . 
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Fig. 3 shows a general diagram of a second 
embodiment of the device according to the invention, 
wherein a data reader 4 connected to a data bus 2 and a 
data medium 5 specific to each user have been added. 
5 Fig. 4 shows the case when the device according to 

the invention is placed in a computer A connected to an 
Ethernet network 12, using the communications protocol: 
'Transport verification protocol' commonly called 
'Transport Control Protocol' or TCP within the 
10 'Internet protocol' framework, commonly called the 
Internet protocol or IP which will be referred in what 
follows as the TCP/IP communications protocol. 
'•^ The device according to the invention is then made 

%J up of an electronic card 10 which is placed in computer 

15 A and which bears the microprocessor 1, the encryption 
Ul module 7, both input/output interfaces 8 and 9 (the 

5: latter optionally included in 1) and memory 3. The 

B microprocessor 1 is connected through a series 

connection to a chip card reader with a keyboard. This 
nj 20 reader comprises both the data reader 4 and the 

™ authentication module 6 which will be noted as 4 + 6. 

Q Each user has a chip card as data medium 5 

containing his identification number," the user private 
key 'u' for encrypting communications with the 
25 authentication management server S described in Fig. 1 
as well as the IP (Internet Protocol) address and the 
public key of said server S. Each chip card also 
contains one or more personal encryption keys and a 
list of authorized communications ports. The encryption 
30 module 7 is based on a block algorithm. The 
input/output interface 8 is an interface providing 
connection to a PCI bus, the other interface 9 
providing connection to the Ethernet network 12. 
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In this example, each electronic card 10 is 
customized by the private encryption key contained in 
memory 3, thus, with the help of an asymmetrical 
encryption algorithm, communication between the network 
5 components equipped with the device according to the 
invention are encrypted in a unique way for each pair 
of network components having the device according to 
the invention. In this example, an asymmetrical key 
exchange algorithm will be used as described in the 

10 aforementioned US and Canadian patents. 

A microprocessor directly managing the PCI bus 
(therefore including the input/output interface 8) and 
the Ethernet interface (therefore including the 
input/output interface 9) may be used as 

15 microprocessor 1. Several of them are produced by 
Motorola today (for example ref . : MPC860T) . This 
microprocessor is directly connected to the encryption 
module 7 which is a DES chip (Data Encoding Standard 
described in the American Standard NBS FIBS PUB 46 as 

20 of January 15th 1977) produced by Newbridge under ref. 
CA95C68 , 

For instance, the chip card reader is a reader 
manufactured by Gemplus under ref. GCR 500-MS. 

Now the device's operation will be simulated. 

25 A user U inserts his personal chip card into the 

reader of computer A. He types in, on the keyboard of 
the chip card reader, his confidential code which makes 
the data contained in the chip card of user U legible 
for said reader. The chip card contains the user's 

30 identification number, the private key 'u' of the user 
for encrypting communication with the authentication 
management server S as well as the IP address and the 
public key of the authentication management server S. 



The electronic card of computer A sends the 
identification number of user U, in an encrypted way, 
to the authentication management server S, by using the 
encryption key (g^as [N] ) which it solely possesses 
with the authentication management server S ('s* 
indicates the private encryption key of the server) . 
Indeed, the authentication management server S has 
access to all public keys, therefore it is aware of g^a 
[N] , and may therefore calculate g'^as [N] . On its side, 
A is aware of its private key 'a' and of the public key 
g'^s [N] of server S and may therefore calculate g^as 
[N] on its side. The message may now be encrypted by A 
and decrypted by server S. Server S then consults its 
table in order to determine the list of TCP/IP 
addresses which the user U may communicate with, and 
for each address, the public encryption key associated 
with this address. Furthermore, it identifies the IP 
address of computer A with user U. 

The authentication management server then sends to 
the device according to the invention which equips 
computer A, the list of authorized addresses for user U 
as well as their public keys and the list of authorized 
communications ports for this user. This sending always 
occurs in an encrypted way but this time, by using key 
g'^su [N] (where 'u' represents the user's private key 
for encrypting communications with the authentication 
management server S) . The microprocessor 1 of the 
electronic card 10 placed in computer A then stores 
this list. 

In order not to impair the network's operation, 
the microprocessor 1 calculates the encryption keys 
g'^ab [N] (where 'b' is the private key of any other 
network component B) when it has nothing else to do. 
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The calculated keys are then stored by microprocessor 
1. These keys will be deleted as soon as the user 
removes his chip card 5 from reader 4 . 

When an information packet arrives (from the 
5 network or from the central processing unit (CPU) of 
the computer) , processor 1 must unwrap the TCP/IP 
protocol in order to find: the communications port used 
by the packet^ the address of the addressee (if the 
packet comes from the CPU) or of the sender (if the 

10 packet comes from the network) . This address will be 
called 'packet address' in the rest of the document. 
This unwrapping of the packet allows certain invalid 
packets to be detected which no longer observe all the 
criteria of the TCP/IP communications protocol. Details 

15 on the TCP/IP unwrapping are explained in the book by 
Mr. Guy Pujolle 'Les reseaux' on pages 539-579. 

When computer A communicates with another 
component of the network^ for example computer B, the 
microprocessor 1 checks whether the port used by the 

20 packet belongs to the list of authorized ports. Then 
the microprocessor 1 examines the packet's address: if 
it belongs to the authorized addresses, the packet is 
processed, otherwise the packet is ignored. In the 
first case, the microprocessor searches whether the 

25 encryption key (g'^ab [N] ) required for communications 
between A and B, has already been calculated. If this 
is not the case, the microprocessor calculates the 
missing key. Once the encryption key (g'^ab [N] ) is 
known, the packet is encrypted if it comes from the CPU 

30 or decoded if it comes from the network, then the 
processor regenerates the TCP/IP wrapping. Thus, the 
communications are well-customized between two pairs of 
network components equipped with the device according 
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to the invention. 

Under the assumption that the address of computer 
B is in the list of network components which user U of 
computer A is authorized to communicate with^ the 
microprocessor 1 of the electronic card 10 placed in 
computer A may calculate the encryption key (g^ab [N] ) 
which will be used by the DES chip for communicating in 
an encrypted way with the other computer B. A 
distinction must now be made between several working 
cases of computer B: 

a) There is a user U* on computer B. This user U' 
also has certain public keys including the one of A. 
Communications then take place without any problems. 

b) There is a user on computer B. However, this 
user does not have access to computer A. User U of 
computer A therefore cannot communicate with computer B 
as he would risk affecting the system's security. 

c) There is no user on computer B. The device 
according to the invention connected to computer B asks 
the authentication management server S whether user U 
is authorized to have access to computer B as nobody is 
keeping a watch on him. If the device according to the 
invention associated with computer B obtains this 
permission, the- public key of the device according to 
the invention connected to computer A, will be sent 
back to it by the authentication management server S, 
exclusively . 

d) No user was using computer B but user U had 
obtained permission from the authentication management 
server to communicate with B. The arrival of a user U' 
on computer B leads to alternatives a) or b) . 

e) Computer B was being used by user U* who then 
stops using the invention by removing his chip card. 
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This change results in alternative c) . 

Now, under the assumption that the user of 
computer A desires to personally encrypt data on his 
computer, he sends the data to be encrypted to the 
5 microprocessor 1 with the help of a software package 
which is not part of the invention. These data are then 
encrypted with the help of the DES chip of the 
encryption module 7 and of one of the personal 
encryption keys contained in the chip card of the user 

10 (the encryption key is selected by the software 
package) . Decrypting works in the same way. 

If the device according to the invention is not 
customized by a private encryption key, this key being 
then stored on each data medium 5, the microprocessor 1 

15 must read this key from the data medium 5 before 
calculating the encryption keys. 

If communications between each pair of network 
components equipped with the device according to the 
invention are not customized, the microprocessor 1 does 

20 not have to calculate the encryption keys required for 
encrypting communications because they are then 
contained on each data medium 5, in the list of private 
encryption keys. 

It should be noted that a user may have several 

25 chip cards, including one which does not have any list 
of network components but contains personal encryption 
keys exclusively. Thus, the user may encrypt or decrypt 
data and work on these data without being connected to 
the network. 

30 By having several chip cards, the user may 

therefore have access to different security levels on 
different computer groups. The security parameters 
transmitted by the server of course depend on the 
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required security level. 

In another embodiment of the invention illustrated 
in Fig. 5, where each device according to the invention 
is not placed in a computer, but placed as an 
independent module on the network, it may be 
contemplated that the device according to the invention 
is then not customized by a private encryption key 
contained in memory 3 but by a private encryption key 
contained on the data medium 5 specific to each user; 
this key is read as soon as the user is authenticated 
by the authentication module. In this embodiment 
illustrated in Fig. 5, the device according to the 
invention is made up of en electronic card 13 bearing 
the microprocessor 1 connected through several buses 2 
to: a memory 3, an encryption module 7, both 
input/output interfaces 8 and 9 which, in this 
embodiment, are network interfaces providing for 
example the Ethernet wrapping in the case of an 
Ethernet network. The data reader 4 may further be 
coupled with an authentication module 6 as a chip card 
reader which may be placed on the electronic card 13 or 
which may be external to the above described module 
according to another embodiment. 

The components used in this embodiment may be 
those used in the first embodiment. 

Operation of the module is identical to the 
operation of the device according to the invention as 
described in the first embodiment except as regards the 
private encryption key. This key must be read as soon 
as the user is identified with the help of the 
identification module 6 so that the encryption keys 
( (g^ab [N] ) may be calculated. 

It should be noted that the chip card reader may 
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be replaced with a finger print reader or with the 
reader for the retina of the user. The address of the 
authentication management server S is then contained in 
memory 3 as well as its public encryption key. When the 
5 user is authenticated with the help of the 
authentication module 6, this module 6 then has the 
digital information on the user, which it sends to the 
microprocessor 1. The latter then uses part of this 
information (for example the first 128 bits) in order 
10 to form the private key 'u' of the user for encrypting 
communications with the authentication management 
server S. 

Everything then takes place as in the case of the 
chip card reader except for the fact that the user must 
15 report when he ceases using the device according to the 
invention, for example by pressing on a button. 

Fig. 6 illustrates in more details an embodiment 
of the encryption module 7, part of the device 
according to the invention. Now, 12 DES chips arranged 
20 in columns of four are inserted; these chips are 
referenced by notation Pi,j where i is the index of the 
column and j that of the line. Two mixers Ml and M2 are 
also added. 

This encryption module operates with any block 
25 encoding algorithm, whereby the latter may be performed 
by a software package or by a specific hardware device. 
In order to simplify the test and to emphasize the 
analogy with algorithms of the DES triple type 
detailed later on, an example based on the use of a DES 
30 chip will be discussed. 

The DES algorithm operates with a 56 bit key on 
messages cut up into 64 bit packets. Triple DES is an 
encoding algorithm based on the use of three successive 
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DES algorithms and which may be implemented by using 
three DES chips. A packet to be encrypted crosses the 
first chip and is encrypted with a first encryption 
key, it then crosses the second DES chip and is 
5 encrypted with a second key, but by using here the DES 
inverse algorithm. It then crosses the third DES chip 
where it is again encrypted with the first key. 

Mixers are available commercially which allow a 
message to be mixed: 'n' input bits are mixed by the 

10 mixer which provides 'n* output bits but in a different 
order. This order may be redefined by a number, every 
time. This mixing function may be reduced to a table 
look-up and it may be performed by software on the 
microprocessor 1 contained in the invention or by a 

15 programmable component. 

By coupling several DES chips with such a 
component, a DES may be designed which works on much 
larger packets. For example, let 12 DES chips be placed 
in rows by 4. The first 4 are placed in parallel and 

20 process a message of 4 times 64 bits (the chips 
simultaneously operate with encryption keys Kl,l, Kl,2, 
Kl,3, Kl,4, for chips Pl,l, PI, 2, PI, 3 and PI, 4, 
respectively) . Subsequently, the message crosses a 
mixer Ml (controlled by key X) . The message then 

25 crosses a new row of 4 DES chips P2,l, P2 , 2 P2,3, P2,4 
in parallel (controlled by keys K2,l, K2,2, K2,3, K2,4) 
In this second row of chips, the used algorithm is the 
inverse of the one used in the first and second rows 
(as in triple DES) . Then the message crosses through 

30 another mixer (controlled by key X'^-l in order to 
perform inverse mixing) . Finally, a last row of 4 DES 
chips, P3,l, P3,2, P3,3, P3,4 (controlled by keys K3,l, 
K3,2, K3,3, K3,4) processes the message. 
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This set-up may be completed in three phases with 
a single DES chip and a single mixer, provided that the 
intermediate results are stored. For this, in a first 
phase, the 4 times 64 bit message to be processed is 
5 cut up into four 64 bit packets. The first packet 
crosses the chip controlled by key Kl,l and the result 
is stored. Then the second packet crosses the chip this 
time controlled by key Kl,2, the result is stored- In 
the same way, the third packet is encrypted by key 

10 Kl,3, then stored. Finally, the fourth packet is 
encrypted by key Kl,4 and stored. 

Each of these four packets encrypted with the help 
of (64 bit) keys Kl,l, K2,2, Kl,3 and Kl,4 enters the 
mixer and is then stored, and cut up into four new 

15 small 16 bit packets. The first 16 bit sub-packets 
issued from the encrypted and mixed 64 bit packets are 
combined, forming a new 64 bit packet which in turn is 
mixed. 

This is repeated a third time as described in the 
20 above paragraphs after replacing encryption keys K2,l, 
K2,2, K2,3, and K2,4 with keys K3,l, K3,2, K3,3 and 
K3,4. Of course, in this third pass, information does 
not necessarily pass through a mixer. A very high 
security version may be designed with 12 different keys 
25 for the DES and with two other keys for the mixers. The 
entire key may have for example 1024 bits in order to 
maintain a power of 2 (56 times 12, i.e. 672 bits for 
the DES, the keys for the mixers may be much longer) . 

The symmetry of triple DES may be maintained by 
30 using identical keys in the first and third phases, 
i.e. K3,l - Kl,l, K3,2 = Kl,2, K3,3 = Kl,3 and 
K3,4 = Kl,4 (the entire key will then have a size of 
512 bits) or by producing a simpler version for the 
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general public, or Kl,l = Kl,2 = Kl,3 = Kl,4 and 
K2,l - K2,2 = K2,3 = K2 , 4 . The key will then have 128 
or 256 bits. 

On a same basis, it is possible to work on large 
blocks grouping an arbitrary number of elementary 
blocks on which will act a DES or any other block 
encoding algorithm. 

In a third preferred embodiment where each device 
according to the invention may be placed either in a 
computer or in an independent module, the device is 
then miniaturized in a chip. 

The third preferred embodiment is described in 
Figs. 7 and 8. 

The device according to the invention is then made 
up of an electronic card 13 bearing a chip 100 
connected through several buses 120, 121, 122, and 123 
with 

a memory 3, 

two physical connectors 108 and 109, which in this 
preferred embodiment, are two network connectors 
(for example ARJ45) or a network connector and a 
connector to an internal bus of the computer (for 
example, a PCI bus), 

a data reader 4 may further be coupled with an 
authentication module 7 as a chip card reader 
which may be placed on the electronic card or 
which may be external to the above described 
module according to another embodiment. 
The components (3, 4 and 6) used in this preferred 

embodiment may be those used in the first embodiment. 

Bus 120 is a serial bus (RS 232), busses 121, 122 

and 123 are 32 bit buses. 

Connectors 108 and 109 are standard connectors 
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which are found for example on PCI/Ethernet network 
cards . 

Chip 100 is described in Fig. 7. This type of chip 
is usually called a 'system on a chip' by computer 
specialists . 

The chip is then made up of a processor core 1 
(for example a ARM 7 from the ARM company) connected 
through a 32 bit bus 141 to: 

a memory controller 131 which controls external 
memory 3 

a bridge 140, enabling several buses to be 
connected with one another 

a double access memory block 103 internal to the 
chip . 

Bus 143 is connected to memory 103. Both buses may 
thus read and write into memory 103. Bus- 143 is 
connected with 3 input /output interfaces 8, 8bis and 9. 
Interfaces 8 and 8bis are network interfaces (for 
example Ethernet) supporting all the link and physical 
layers of the ISO standard (encapsulation, 
transport...). Upon implementing chip 100 on card 13, 
the input/output interfaces to be used are selected 
(for example network/network, for an external 
embodiment or network/bus for an embodiment internal to 
the computer) . 

Thus, this embodiment allows a unique chip 100 to 
be produced with which an internal or external device 
may subsequently be built very simply. 

Bus 142 is connected to a serial interface (RS232) 
enabling the chip card reader 4 to be controlled. It is 
possible to add other RS232 interfaces on this bus, for 
example, for connecting chip 100 to a V-modem or simply 
for controlling the diodes placed on card 13. 
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The operation of the module is identical to the 
operation of the invention as described in the first or 
second preferred embodiment: everything depends on the 
private encryption key which may be placed either in 
chip 100 (as in the first embodiment) or provided by 
the user (as in the second embodiment) . 

It is well understood that the different 
embodiments described above are purely illustrative and 
non-limiting and that many alterations may be made to 
them without however departing from the scope of the 
invention . 

It should be noted that the chip card reader may 
be replaced with a finger print reader or with a reader 
for the retina of the user. 



